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Claims 



1 . Method for personalizing GSM chips having a memory range in which ayleast one 
subscriber identification number IMSI and a card number ICCID are storeca, and 
wherein for personalizing the chip an additional secret key Ki and, optionally, 
additional data are stored, 
characterized in that the chip is personalized at the time when the subscriber logs on to 
the subscriber network. 
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10 2. The method according to claim 1, characterized in that the /hip is personalized 
when the subscriber logs on to the subscriber network for the first time . 

3. The method according to claim 1 or 2, characterized in that for pre-personalizing 
the chip at the manufacturer, at least initial, card-specific data, namely a first secret key 
15 Ki_l and, optionally, additional data, such as PIN anti PUK are stored. 


4. The method according to one of the claims 1-3, characterized by the following 
process steps: 

in a first process step, thehchip manufacturer obtains the ICCID and the IMSI 
20 from a number pool, t|he\^chip itself derives an initial key Ki l fi-om a key 

Kl which is known to\and\ent^ed into the chip by the chip manufacturer, 
while PIN and PUK ar^ set t^a default value, 
in a second process step, an Wtry i^sjnade in the -AC and HLR as soon as a 
subscriber has entered intQ a contrk^t with the network operator, 
25 in a third process step, th^ AC Mso derives the initial first key Ki_l , 

in a fourth process step( the network sets the conditions so that during logon to 
the network, a connection is established firom the chip to the component SC 
(security center of the network operator), 
in a fifth processMep, the connection is routed from the chip to the SC during 
30 the first logon, 

in a sixth process step, a new, second secret key Ki_2 and, optionally, a PUK is 
negotiated with the chip (for example using the Diffie-Hellman method) or 
generated in the SC and transmitted to the chip. 
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in a seventh process step, the conditions of the fourth process ^ep are disabled 
again. 

5. The method according to one of the claims 1-4, characteri^d in that the initial 
secret key Ki_l which is first stored in the chip, is not tranMnitted to and stored in the 
authentication center (AC) before the contract is established. 
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6. Chip for carrying out the method according to erne of the claims 1-5, characterized 
in that the chip in the terminal equipment is Toplkit-enabled and can communicate 

10 with the SC and negotiate a key. 

7. The chip according to claim 6, dhara^rized in that the chip can receive data from 
the SC and writes these data to its rAemory and, optionally, reads these data from the 
memory the and changes the data an^or transr^its the data to the computer center 

15 (SC), 

8. The chip according to one o£4he claims 6 or 7, characterized in that the micro- 
processor of the chip negotiates a secret key with the SC. 

20 9. The chip according to /laim 8, characterized in that the key of the method is 
negotiated using the Diffie-Hellman method. 
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10. The chip according to one of the claims 6-9, characterized in that the chip has a 
dialing number which is fixedly pre-programmed by the manufacturer (fixed dialing). 

11. Computer center for carrying out the method according to one of the claims 1-5, 
characterized in that the HLR is capable of setting/and deleting a rerouting command 
(hotlining flag). 
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12. Computer center for carry i 
by using a chip according to one\of 
10 sets conditions so that a connection i 
during logon to the network. 


ut the Method according to one of the claims 1-5, 
aims 6-10, characterized in that the network 
iblished from the chip to the component SC 


13. Computer center for carrying out the methooSaccording to one of the claims 1-5, 
by using a chip according to one of theUaims 6-1 (A characterized in that the hotlining 
15 flag is set in the HLR when/he initial ke^Ki_l is a first entered in the AC. 


